a49c8e41e81db9a91f28b5e25c9215edbin[.]zip | Triage

Sharing

General

Target

a49c8e41e81db9a91f28b5e25c9215edbin.zip
Size

379KB
MD5

463f488dcc1a1ad5657b77244e63e0c6
SHA1

de3e327d81b44f784ba9978606e5fb26d6a5ed72
SHA256

2d57792156d060c9884d1f3fdb789e2a426711de981a0aa7ef389fb491c7f458
SHA512

8998becb4809ac7357053af0553b7c6fce355f34b2a5317f0d336f7ad55080725b4ba46cdf4f030689aa1fd18a50c38ba569d99e5605463cf261ec11a74178ca
SSDEEP

6144:q5xqoQdtFZFaF2Q+3BAGvADL7Z2ol0KF7M2z7khT4GhLbKBXSWngi6vsyAd:Ust7G2QGY9r42zAhEGhS8t9Ad

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/576ca0fbe491aadd6c66a937af35e94d616d9dd9c079b3c7c617fa25b7010700.exe

Files

a49c8e41e81db9a91f28b5e25c9215edbin.zip
.zip

Password: infected
576ca0fbe491aadd6c66a937af35e94d616d9dd9c079b3c7c617fa25b7010700.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 523KB - Virtual size: 522KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ